33b2e07655cb41b030a8f39f4fcbcca7b041308601dd9be7350c99d803880e18N

General

Target

33b2e07655cb41b030a8f39f4fcbcca7b041308601dd9be7350c99d803880e18N
Size

305KB
MD5

2b7500a0e59271d1b268e39e7456faf0
SHA1

29e4e07513395274a71476f4c1a7d315377fc2c5
SHA256

33b2e07655cb41b030a8f39f4fcbcca7b041308601dd9be7350c99d803880e18
SHA512

c64ed070e29dc208566db5cd0c24f668d90d96cd5a380b32890a0a37d925f18bc809697751a989800907402a834269fa4306a51643eb7537ddb9de0136a18c3e
SSDEEP

6144:T5DPnPsHhCL5SpSFYzSOJiKjYpoyOH43ncdWduZSPEVICgW/MuBZo:TRPnPgpaYxYpMH43ncAEnCut

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33b2e07655cb41b030a8f39f4fcbcca7b041308601dd9be7350c99d803880e18N

Files

33b2e07655cb41b030a8f39f4fcbcca7b041308601dd9be7350c99d803880e18N
.exe windows:4 windows x86 arch:x86

ee174fc6e221bd06e1d7d23358cfd5a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadWritePtr
LoadLibraryA
InterlockedExchange
CreateEventA
HeapCreate
SetConsoleTitleA
SetFileTime
CloseHandle
HeapSize
GetModuleHandleA
GetStartupInfoW
lstrcpyW
LeaveCriticalSection
SetFileTime
GetLastError
GetExitCodeProcess
lstrcatA
SetFileTime
GetStringTypeA
GetFileSize
ReadFile

mstscax

DllRegisterServer
DllUnregisterServer
DllCanUnloadNow
DllGetClassObject

shell32

SHGetDiskFreeSpaceA
ExtractIconA
ShellMessageBoxW
ShellAboutA
DragFinish
StrChrA
SHFree
DragQueryFileA
DragAcceptFiles
DllUnregisterServer
SHGetSettings
SHGetMalloc
DuplicateIcon

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee174fc6e221bd06e1d7d23358cfd5a9

Headers

File Characteristics

Imports

kernel32

mstscax

shell32

rasapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 288B

.rich Size: 1KB - Virtual size: 176B

.ole Size: 512B - Virtual size: 95B

.rsrc Size: 293KB - Virtual size: 293KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 288B

.rich
Size: 1KB - Virtual size: 176B

.ole
Size: 512B - Virtual size: 95B

.rsrc
Size: 293KB - Virtual size: 293KB